Palo Alto Security Engineer

URGENT BACKFILL: THEY NEED A REPLACEMENT TO START NEXT WEEK. THE MANAGER WOULD LIKE TO SEE MORE SENIOR CANDIDATES 15 YEARS. WE ARE NOT GOING TO WIN THIS PROJECT BY SENDING CANDIDATES WHO ONLY MEET THE MINIMUM REQUIREMENTS.

THE MANAGER IS LOOKING FOR CANDIDATES OUT OF VERY LARGE ENTERPRISE COMPANIES WITH RECENT PROJECTS IN THE NY/NJ AREA. THEY HAVE HAD BAD EXPERIENCE WITH CANDIDATES WHO WORKED ALL OVER THE US AND NOW ARE IN NY/MAYBE. They prefer New Yorkers. ***** THIS IS A PURE NETWORK SECURITY ENGINEER FOCUSED ON PALO ALTO NOT A NETWORK ENGINEER WHO HAS WORKED WITH PALO ALTO. WE NEED A PALO ALTO SME/Certifications.

IMMEDIATE NEED!! *** We need: A senior (12 years 15 PREFERRED) Network security engineer with extensive experience working with Palo Alto (certifications preferred) Cisco NetScaler and Citrix. ****THE MORE CERTIFICATIONS THE BETTER AND PALO ALTO CERTIFICATION IS PREFERRED. CANDIDATES NEED TO BE IN THE NYC OFFICE ONE TIME A WEEK (WEDNESDAYS) AND LIVE WITHIN A ONE HOUR COMMUTE TO MIDTOWN.

***WE DO NOT WIN PROJECTS AT THIS CLIENT BY SENDING CANDIDATES WHO ONLY MEET THE MINIMUM REQUIREMENTS. THIS IS A MULTI YEAR CONTRACT SO CANDIDATES MUST have Long Projects/Good Tenure Excellent communication skills and a State issued ID (Not Bills) showing they are Local.

Required Location: Hybrid/Midtown New York City 1 days a week.

Contract status: C-C preferred or W2 Referral.

Interview Required: Video

Candidate Visas Accepted: No Opt.

Candidates must be LOCAL to the NEW YORK or NEW JERSEY area and COMMUTE into the office ONE TIMES A WEEK. NO RELOCATION CONSIDERED. *** Please send candidates even if they are over the target rate. The Client is flexible.

*** PLEASE Only send me candidates in the NY/NJ area Open to hybrid.

*** Please make sure that each submittal includes:

1. Drivers license or State ID
2. Link to the candidates LinkedIn account.
3. Below submittal Format

*** Candidate Must Haves on a resume and for submittal:

1. How many years working with: Network Security Engineer

2. How many years working with: Palo Alto/Certification

3. How many years working with: Cisco

4. How many years working with: Citrix

5. How many years working with: Certifications

*** Please provide all the below Submittal Format details with each submittal. It is required for the client Management system.

• Full Name:
• Rate:
• Location:
• Availability to Interview: One Days notice
• Availability to Start:
• Email Address:
• Phone Number:
• Visa Status:
• Education - College/Year of graduation:
• Link to LinkedIn
• Certifications (Please list)

Job Description:

We are seeking a highly skilled Palo Alto Security Engineer to design implement operate and support enterprise network and security infrastructure. The ideal candidate will have deep hands-on experience with Palo Alto firewalls strong Cisco routing and switching fundamentals and the ability to troubleshoot complex network and security issues at the packet level. This role requires strong technical expertise excellent documentation skills and the ability to collaborate across infrastructure application and business teams in a regulated enterprise environment.

Key Responsibilities

• Design configure and support Palo Alto firewalls including security policies NAT and VPNs (Site-to-Site Remote Access SSL).
• Provide operational and engineering support for network security and monitoring systems across the enterprise.
• Troubleshoot complex network and security issues independently including low-level packet and protocol analysis.
• Assist infrastructure and application teams with network and security-related issues.
• Manage and resolve incidents and ad-hoc operational requests including after-hours and weekend on-call support as required.
• Open and manage support cases with hardware/software vendors telecom providers and carriers through full resolution.
• Work directly with end users and business stakeholders as needed to resolve connectivity or security issues.
• Maintain and enhance network and security monitoring systems including alerting escalation policies and reporting (e.g. Nagios Grafana).
• Produce periodic system health capacity and utilization reports.
• Collaborate with internal and external auditors to provide audit evidence and documentation for SOX PCI and Cybersecurity requirements.
• Analyze business and technical requirements and provide secure design and implementation recommendations aligned with company standards and best practices.
• Create and maintain detailed technical documentation including firewall rules network diagrams design documents and operational procedures.
• Participate in new implementations upgrades and infrastructure projects across local and global environments.
• Enforce policies and procedures related to system configuration redundancy monitoring and change management.
• Actively remediate network and security vulnerabilities to meet business compliance and security requirements.

Required Qualifications

• 5 years of hands-on firewall configuration experience including:
  • Security policy design
  • NAT
  • VPNs (L2L Remote Access SSL)
• Strong experience with Palo Alto firewalls; Cisco ASA experience is a plus.
• 10 years of Cisco routing and switching experience.
• Excellent understanding of Layer 2 and Layer 3 networking concepts.
• 12 years of overall IT network and security engineering and support experience.
• Strong Linux skills with comfort using command-line tools on RHEL.
• Solid understanding of SSH and SSH port forwarding.
• In-depth knowledge of security technologies including firewalls load balancers proxies and authentication mechanisms.
• Experience with SNMP-based monitoring systems (e.g. Nagios Grafana).
• Proven ability to troubleshoot network and security systems with minimal guidance.
• Strong written and verbal communication skills.
• Ability to provide examples of:
  • Written technical documentation
  • Network diagrams created or maintained
• Deep understanding of industry-leading network and security technologies from design engineering and troubleshooting perspectives.

Preferred / Nice-to-Have Skills

• Experience with Arista network design configuration and troubleshooting.
• Knowledge of scripting languages such as Python or Perl.
• Experience with configuration and automation tools such as Ansible Puppet or Chef.
• Familiarity with enterprise change management and ITIL-based operational processes.